Security fix: unauthorized access (#10091)

* Security fix: unauthorized access Affects nginx users: Moved php files outside of public html directory (Apache was protected by .htaccess) Affects all users: Some files did not check for authentication and could disclose some info. Better checks before including files from user input * git mv html/includes/ includes/html git mv html/pages/ includes/html/
2024-10-07 16:52:45 +00:00 · 2019-04-11 23:26:42 -05:00
parent b81af32ed2
commit 36431dd296
1301 changed files with 1443 additions and 1439 deletions
--- a/includes/html/graphs/application/ceph_osd_performance.inc.php
+++ b/includes/html/graphs/application/ceph_osd_performance.inc.php
@@ -0,0 +1,25 @@
+<?php
+
+$ds_in  = 'apply_ms';
+$ds_out = 'commit_ms';
+
+$in_text = 'Apply';
+$out_text = 'Commit';
+
+$ceph_osd_rrd = ceph_rrd('osd');
+
+if (rrdtool_check_rrd_exists($ceph_osd_rrd)) {
+    $rrd_filename = $ceph_osd_rrd;
+}
+
+$colour_area_in  = 'FF3300';
+$colour_line_in  = 'FF0000';
+$colour_area_out = 'FF6633';
+$colour_line_out = 'CC3300';
+
+$colour_area_in_max  = 'FF6633';
+$colour_area_out_max = 'FF9966';
+
+$unit_text = 'Miliseconds';
+
+require 'includes/html/graphs/generic_duplex.inc.php';